Vulnerabilities > Apple > MAC OS X > 10.4.5
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-03-02 | CVE-2006-0384 | Multiple vulnerability in Apple Mac OS X Security Update 2006-001 automount in Mac OS X 10.4.5 and earlier allows remote file servers to cause a denial of service (unresponsiveness) or execute arbitrary code via unspecified vectors that cause automount to "mount file systems with reserved names". | 7.5 |
2006-03-02 | CVE-2006-0383 | Multiple vulnerability in Apple Mac OS X Security Update 2006-001 IPSec when used with VPN networks in Mac OS X 10.4 through 10.4.5 allows remote attackers to cause a denial of service (application crash) via unspecified vectors involving the "incorrect handling of error conditions". | 5.0 |
2006-02-22 | CVE-2006-0848 | Configuration vulnerability in Apple mac OS X and mac OS X Server The "Open 'safe' files after downloading" option in Safari on Apple Mac OS X allows remote user-assisted attackers to execute arbitrary commands by tricking a user into downloading a __MACOSX folder that contains metadata (resource fork) that invokes the Terminal, which automatically interprets the script using bash, as demonstrated using a ZIP file that contains a script with a safe file extension. | 5.1 |
2006-02-14 | CVE-2006-0382 | Local Denial Of Service vulnerability in Apple mac OS X 10.4.5 Apple Mac OS X 10.4.5 and allows local users to cause a denial of service (crash) via an undocumented system call. | 2.1 |
2005-12-31 | CVE-2005-3782 | Denial-Of-Service vulnerability in Apple Mac OS X Server Mac OS X 10.4.3 up to 10.4.6, when loginwindow uses the "Name and password" setting, and the "Show the Restart, Sleep, and Shut Down buttons" option is disabled, allows users with physical access to bypass login and reboot the system by entering ">restart", ">power", or ">shutdown" sequences after the username. | 2.1 |
2005-12-31 | CVE-2005-3712 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple mac OS X and mac OS X Server Heap-based buffer overflow in rsync in Mac OS X 10.4 through 10.4.5 allows remote authenticated users to execute arbitrary code via long extended attributes. | 6.5 |
2005-12-31 | CVE-2005-3706 | Multiple vulnerability in Apple Mac OS X Security Update 2006-001 Heap-based buffer overflow in LibSystem in Mac OS X 10.4 through 10.4.5 allows context-dependent attackers to execute arbitrary code by causing an application that uses LibSystem to request a large amount of memory. | 6.4 |
2005-12-31 | CVE-2005-2714 | Link Following vulnerability in Apple mac OS X and mac OS X Server passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 allows local users to overwrite arbitrary files via a symlink attack on the .pwtmp.[PID] temporary file. | 6.8 |
2005-12-31 | CVE-2005-2713 | Multiple vulnerability in Apple Mac OS X Security Update 2006-001 passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 allows local users to create arbitrary world-writable files as root by specifying an alternate file in the password database option. | 6.8 |
2005-05-19 | CVE-2005-1260 | Resource Exhaustion vulnerability in multiple products bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb"). | 5.0 |